$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa File: AS141602.roa (raw, json) Hash identifier: K1qKH917xAEpOediyJhyK4cH5tjvSckKctfXBNCiRb4= Subject key identifier: 1D:D5:58:C6:0F:76:F6:FC:9F:4F:24:58:0A:DA:84:D1:4E:9F:08:40 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42553F28051D0F6AE40773AB1D9F3B9621E68FC4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa Signing time: Mon 03 Jul 2023 06:56:04 +0000 ROA not before: Mon 03 Jul 2023 06:51:04 +0000 ROA not after: Mon 01 Jul 2024 06:56:04 +0000 asID: 141602 IP address blocks: 2401:3a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:55:3f:28:05:1d:0f:6a:e4:07:73:ab:1d:9f:3b:96:21:e6:8f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 3 06:51:04 2023 GMT Not After : Jul 1 06:56:04 2024 GMT Subject: CN=1DD558C60F76F6FC9F4F24580ADA84D14E9F0840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:2e:84:c4:f7:6f:f1:2d:82:1e:59:6e:96: 17:98:25:c3:bc:f1:49:8b:7d:95:fc:6c:be:35:65: 30:ed:2e:a0:4c:a6:3d:57:90:2f:5b:14:e0:3d:22: 48:9e:e9:94:6a:0b:76:62:0b:98:b5:2a:6c:df:73: 19:e7:76:21:e1:e7:e6:da:63:ef:1a:79:25:64:5b: 9e:82:3e:8d:29:6a:c1:2a:65:f0:4d:79:79:bc:c0: 3a:cb:cf:89:27:d0:75:f5:f9:7f:d8:da:97:3a:7c: 6c:9e:fb:f4:1b:aa:b7:0c:d9:8d:bb:95:ca:ba:6d: cf:3f:ee:1d:45:8d:e7:4d:88:ec:cc:86:fa:6a:7a: 92:eb:b1:b8:17:ea:58:81:36:cc:99:42:e9:55:30: 2c:62:da:a5:9f:2d:df:e8:96:e4:7e:18:79:3a:5d: d2:bc:8e:f3:34:fa:24:63:0e:75:ec:df:6b:31:9c: 92:34:33:7b:3c:2f:6c:61:8b:9e:4b:32:72:16:37: 5d:dc:af:a6:e2:d2:c8:e7:a9:04:0b:66:37:c8:78: 68:bd:6e:e4:3b:01:27:1d:9b:49:29:24:63:58:bd: c2:3a:18:05:9f:25:9f:d9:38:30:93:71:16:06:b6: 56:5f:07:5a:78:e0:ab:51:1e:50:bc:85:6b:74:e9: 0e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D5:58:C6:0F:76:F6:FC:9F:4F:24:58:0A:DA:84:D1:4E:9F:08:40 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3a0::/32 Signature Algorithm: sha256WithRSAEncryption 56:84:92:a7:72:95:d4:e2:cf:90:50:97:59:c3:5a:7a:b4:cb: ac:a1:2f:37:24:44:02:70:1b:80:1b:54:a8:b4:5c:1a:18:05: 0b:dd:c6:ef:e2:f7:b4:9e:4f:4c:7a:e6:f0:b3:ea:69:2c:02: b5:ea:25:ff:fe:18:94:b6:f8:78:63:f4:bb:74:70:c0:45:fa: 5b:f6:a3:fe:df:2a:60:59:32:82:3f:25:7e:1b:1a:38:44:4e: fd:bd:d3:16:12:48:62:8e:c7:fa:32:30:f7:21:2c:d5:84:89: d5:18:2d:f3:7f:9f:81:ea:83:4d:61:10:64:70:fb:80:b9:43: 3d:20:e8:a2:0f:a4:13:ab:55:ab:b0:77:7a:1b:59:2e:d0:a4: b4:3c:66:80:b6:4c:6e:0e:2f:a8:71:ba:7a:33:b1:4f:d9:30: 09:30:f1:89:38:11:32:f4:75:32:9f:f4:bc:f0:d8:1d:fa:2b: a1:25:a2:21:b7:8a:b5:6b:22:13:03:97:c9:21:f6:56:de:a4: d9:7a:2d:f7:d6:b8:3a:55:af:d4:29:52:f8:5a:c7:65:ef:50: 62:e0:2c:b9:93:73:2c:19:90:0d:7e:b3:12:f1:83:db:29:49: a9:de:3e:ea:c7:0c:6a:0e:8c:e0:ab:08:6f:e6:c5:29:cc:b4: 2b:eb:d8:ee -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUQlU/KAUdD2rkB3OrHZ87liHmj8QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwMzA2NTEwNFoX DTI0MDcwMTA2NTYwNFowMzExMC8GA1UEAxMoMURENTU4QzYwRjc2RjZGQzlGNEYy NDU4MEFEQTg0RDE0RTlGMDg0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0WLoTE92/xLYIeWW6WF5glw7zxSYt9lfxsvjVlMO0uoEymPVeQL1sU4D0i SJ7plGoLdmILmLUqbN9zGed2IeHn5tpj7xp5JWRbnoI+jSlqwSpl8E15ebzAOsvP iSfQdfX5f9jalzp8bJ779BuqtwzZjbuVyrptzz/uHUWN502I7MyG+mp6kuuxuBfq WIE2zJlC6VUwLGLapZ8t3+iW5H4YeTpd0ryO8zT6JGMOdezfazGckjQzezwvbGGL nksychY3XdyvpuLSyOepBAtmN8h4aL1u5DsBJx2bSSkkY1i9wjoYBZ8ln9k4MJNx Fga2Vl8HWnjgq1EeULyFa3TpDi0CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQd1VjG D3b2/J9PJFgK2oTRTp8IQDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBA6AwDQYJKoZIhvcNAQELBQADggEBAFaEkqdyldTiz5BQl1nD Wnq0y6yhLzckRAJwG4AbVKi0XBoYBQvdxu/i97SeT0x65vCz6mksArXqJf/+GJS2 +Hhj9Lt0cMBF+lv2o/7fKmBZMoI/JX4bGjhETv290xYSSGKOx/oyMPchLNWEidUY LfN/n4Hqg01hEGRw+4C5Qz0g6KIPpBOrVauwd3obWS7QpLQ8ZoC2TG4OL6hxunoz sU/ZMAkw8Yk4ETL0dTKf9Lzw2B36K6EloiG3irVrIhMDl8kh9lbepNl6LffWuDpV r9QpUvhax2XvUGLgLLmTcywZkA1+sxLxg9spSanePurHDGoOjOCrCG/mxSnMtCvr 2O4= -----END CERTIFICATE-----Generated at Wed May 8 10:06:53 2024 by rpki-client on console-ams.rpki-client.org